|
210151
|
5.4 |
MEDIUM
Network
|
limesurvey
|
limesurvey
|
Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbox via the Notifications & data feature.
|
CWE-79
Cross-site Scripting
|
CVE-2020-23710
|
2024-11-21 14:14 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210152
|
6.1 |
MEDIUM
Network
|
catfish-cms
|
catfish_cms
|
A cross site scripting (XSS) vulnerability in Catfish CMS 4.9.90 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "announcement_gonggao" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2020-23962
|
2024-11-21 14:14 |
2021-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210153
|
5.5 |
MEDIUM
Local
|
intel
|
baseboard_management_controller_firmware
|
Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable deni…
|
CWE-665
Improper Initialization
|
CVE-2020-24475
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210154
|
8.0 |
HIGH
Adjacent
|
intel
|
baseboard_management_controller_firmware
|
Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation o…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-24474
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210155
|
7.8 |
HIGH
Local
|
intel
|
baseboard_management_controller_firmware
|
Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalati…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-24473
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210156
|
8.8 |
HIGH
Local
|
intel
debian
|
celeron_n2840
celeron_j4005
celeron_n4100
celeron_n4000
celeron_j4105
celeron_j3355
celeron_n3350
celeron_j3455
celeron_n3450
celeron_j3060
celeron_j3160
celeron_n300…
|
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
|
CWE-459
Incomplete Cleanup
|
CVE-2020-24489
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210157
|
6.8 |
MEDIUM
Physics
|
intel
|
converged_security_and_manageability_engine
|
Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of…
|
NVD-CWE-Other
|
CVE-2020-24516
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210158
|
6.8 |
MEDIUM
Physics
|
intel
|
realsense_id_f450_firmware
realsense_id_f455_firmware
|
Protection mechanism failure in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
|
NVD-CWE-Other
|
CVE-2020-24515
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210159
|
6.8 |
MEDIUM
Physics
|
intel
|
realsense_id_f450_firmware
realsense_id_f455_firmware
|
Improper authentication in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
|
CWE-287
Improper Authentication
|
CVE-2020-24514
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210160
|
3.3 |
LOW
Local
|
intel
debian
netapp
|
microcode
debian_linux
solidfire_bios
hci_compute_node_bios
fas\/aff_bios
|
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-24512
|
2024-11-21 14:14 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
